Description:
TROJ_SIRCAM.A has now been upgraded to HIGH RISK. This worm propagates via email using SMTP commands. It sends copies of itself to all addresses listed in an infected user's address book, and arrives in an email with a random subject line and an attachment by the same name. It also propagates via shared network drives.

Some ******* actually sent me the file, asking for help/comments on his sound-card selection. The payload was disguised as a SB16 discription/technical file. If it was sent on purpose, may the fleas of a thousand camels infest his armpits.

Yes, for the first time in 5 years, i've been infected by a virus. Sucked right in.

Thank you,
i too was wondering what it was and was kind of suspect of it, so instead of opening it i sent a reply to the sender saying that you should check the email address "you sent it to, i do not believe it was intended for me and therefore did not opne it" and never got a reply i know to go delete the file immediately.

Yup, the very same one about a SB16 card. I had opened the file up via text editor at first, and seeing it was a word 6.0 doc header file, went ahead and opened it. Wrong move. I assume the email address has been harvested from the bulletin board, in this case targeting my [email protected] email address.

You have to run the file in the original .com or .exe file format to activate the payload, i think anyway. Scan your system to clean in any case.

Just so you all know, these folks weren't sending you the virus on purpose. The virus will look for random docs on your hard drive, and email those to everyone in your address book. If you open the message with outlook express (without turing off scripting) your infected.